ASB-A-179338675

See a problem?

Import Source

https://storage.googleapis.com/android-osv/ASB-A-179338675.json

JSON Data

https://api.osv.dev/v1/vulns/ASB-A-179338675

Aliases

A-179338675
CVE-2021-0704

Published

2021-12-01T00:00:00Z

Modified

2024-08-07T19:29:52.483320Z

Summary

[none]

Details

In createNoCredentialsPermissionNotification and related functions of AccountManagerService.java, there is a possible way to retrieve accounts from the device without permissions due to a permissions bypass. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.

References

https://source.android.com/security/bulletin/2021-12-01

Affected packages

Android / platform/frameworks/base

Package

Name: platform/frameworks/base

Affected ranges

Type: ECOSYSTEM
Events: Introduced

9:0

Fixed

9:2021-12-01

Affected versions

Other

Ecosystem specific

{
    "vanir_signatures": [
        {
            "digest": {
                "length": 675.0,
                "function_hash": "63344495078565705575570774399620073325"
            },
            "id": "ASB-A-179338675-1aba6102",
            "source": "https://android.googlesource.com/platform/frameworks/base/+/26de0c231ffb9fd8d22e80ca120c766c26276779",
            "deprecated": false,
            "signature_version": "v1",
            "target": {
                "file": "services/core/java/com/android/server/accounts/AccountManagerService.java",
                "function": "getCredentialPermissionNotificationId"
            },
            "signature_type": "Function"
        },
        {
            "digest": {
                "length": 1140.0,
                "function_hash": "13955884187775680452074247685830298299"
            },
            "id": "ASB-A-179338675-55c1d0a6",
            "source": "https://android.googlesource.com/platform/frameworks/base/+/26de0c231ffb9fd8d22e80ca120c766c26276779",
            "deprecated": false,
            "signature_version": "v1",
            "target": {
                "file": "services/core/java/com/android/server/accounts/AccountManagerService.java",
                "function": "createNoCredentialsPermissionNotification"
            },
            "signature_type": "Function"
        },
        {
            "digest": {
                "length": 288.0,
                "function_hash": "307051170335423403625995541990461685265"
            },
            "id": "ASB-A-179338675-77aadba8",
            "source": "https://android.googlesource.com/platform/frameworks/base/+/26de0c231ffb9fd8d22e80ca120c766c26276779",
            "deprecated": false,
            "signature_version": "v1",
            "target": {
                "file": "services/core/java/com/android/server/accounts/AccountManagerService.java",
                "function": "cancelAccountAccessRequestNotificationIfNeeded"
            },
            "signature_type": "Function"
        },
        {
            "digest": {
                "threshold": 0.9,
                "line_hashes": [
                    "163192342974377152570748212987128057417",
                    "22536596362231034706818993951376135422",
                    "118745096072953635828624464550044468726",
                    "34877321948437329702879665358890462741",
                    "32909206349284035137301982068806649775",
                    "66018423483605967277575008754118635664",
                    "75617253890838800580423688036835732869",
                    "318496622784484702645689058493886502516",
                    "286045575951711842270786390741141769759",
                    "269835483600688645271061730841538456826",
                    "65090194467229542279066703150103838236",
                    "205939095187475124984644159056928354449",
                    "84516931391985999388513136331065465072",
                    "287760905822221236413637403731432114516",
                    "281401285350230527246651408033674429643",
                    "75333331059831584579307336761417834222",
                    "89605061369020268649647604619435640331",
                    "16769430245374382523840380980960032915",
                    "243992805329677801353898343829907170815",
                    "200000965947859984963851073412833473112",
                    "213738648577702954548876568284062043058"
                ]
            },
            "id": "ASB-A-179338675-87908f8c",
            "source": "https://android.googlesource.com/platform/frameworks/base/+/26de0c231ffb9fd8d22e80ca120c766c26276779",
            "deprecated": false,
            "signature_version": "v1",
            "target": {
                "file": "services/core/java/com/android/server/accounts/AccountManagerService.java"
            },
            "signature_type": "Line"
        },
        {
            "digest": {
                "length": 986.0,
                "function_hash": "102001159819944637002872403145654094347"
            },
            "id": "ASB-A-179338675-87ff2867",
            "source": "https://android.googlesource.com/platform/frameworks/base/+/26de0c231ffb9fd8d22e80ca120c766c26276779",
            "deprecated": false,
            "signature_version": "v1",
            "target": {
                "file": "services/core/java/com/android/server/accounts/AccountManagerService.java",
                "function": "newRequestAccountAccessIntent"
            },
            "signature_type": "Function"
        },
        {
            "digest": {
                "length": 341.0,
                "function_hash": "162839267298597953049593036352953645864"
            },
            "id": "ASB-A-179338675-c3834776",
            "source": "https://android.googlesource.com/platform/frameworks/base/+/26de0c231ffb9fd8d22e80ca120c766c26276779",
            "deprecated": false,
            "signature_version": "v1",
            "target": {
                "file": "services/core/java/com/android/server/accounts/AccountManagerService.java",
                "function": "handleAuthenticatorResponse"
            },
            "signature_type": "Function"
        }
    ],
    "fixes": [
        "https://android.googlesource.com/platform/frameworks/base/+/26de0c231ffb9fd8d22e80ca120c766c26276779"
    ],
    "spl": "2021-12-01",
    "severity": "High",
    "types": [
        "ID"
    ]
}

Android / platform/frameworks/base

Package

Name: platform/frameworks/base

Affected ranges

Type: ECOSYSTEM
Events: Introduced

10:0

Fixed

10:2021-12-01

Affected versions

Other

Ecosystem specific

{
    "vanir_signatures": [
        {
            "digest": {
                "length": 986.0,
                "function_hash": "102001159819944637002872403145654094347"
            },
            "id": "ASB-A-179338675-25e01c54",
            "source": "https://android.googlesource.com/platform/frameworks/base/+/26de0c231ffb9fd8d22e80ca120c766c26276779",
            "deprecated": false,
            "signature_version": "v1",
            "target": {
                "file": "services/core/java/com/android/server/accounts/AccountManagerService.java",
                "function": "newRequestAccountAccessIntent"
            },
            "signature_type": "Function"
        },
        {
            "digest": {
                "threshold": 0.9,
                "line_hashes": [
                    "163192342974377152570748212987128057417",
                    "22536596362231034706818993951376135422",
                    "118745096072953635828624464550044468726",
                    "34877321948437329702879665358890462741",
                    "32909206349284035137301982068806649775",
                    "66018423483605967277575008754118635664",
                    "75617253890838800580423688036835732869",
                    "318496622784484702645689058493886502516",
                    "286045575951711842270786390741141769759",
                    "269835483600688645271061730841538456826",
                    "65090194467229542279066703150103838236",
                    "205939095187475124984644159056928354449",
                    "84516931391985999388513136331065465072",
                    "287760905822221236413637403731432114516",
                    "281401285350230527246651408033674429643",
                    "75333331059831584579307336761417834222",
                    "89605061369020268649647604619435640331",
                    "16769430245374382523840380980960032915",
                    "243992805329677801353898343829907170815",
                    "200000965947859984963851073412833473112",
                    "213738648577702954548876568284062043058"
                ]
            },
            "id": "ASB-A-179338675-333aaede",
            "source": "https://android.googlesource.com/platform/frameworks/base/+/26de0c231ffb9fd8d22e80ca120c766c26276779",
            "deprecated": false,
            "signature_version": "v1",
            "target": {
                "file": "services/core/java/com/android/server/accounts/AccountManagerService.java"
            },
            "signature_type": "Line"
        },
        {
            "digest": {
                "length": 288.0,
                "function_hash": "307051170335423403625995541990461685265"
            },
            "id": "ASB-A-179338675-3c7362f5",
            "source": "https://android.googlesource.com/platform/frameworks/base/+/26de0c231ffb9fd8d22e80ca120c766c26276779",
            "deprecated": false,
            "signature_version": "v1",
            "target": {
                "file": "services/core/java/com/android/server/accounts/AccountManagerService.java",
                "function": "cancelAccountAccessRequestNotificationIfNeeded"
            },
            "signature_type": "Function"
        },
        {
            "digest": {
                "length": 341.0,
                "function_hash": "162839267298597953049593036352953645864"
            },
            "id": "ASB-A-179338675-81bea809",
            "source": "https://android.googlesource.com/platform/frameworks/base/+/26de0c231ffb9fd8d22e80ca120c766c26276779",
            "deprecated": false,
            "signature_version": "v1",
            "target": {
                "file": "services/core/java/com/android/server/accounts/AccountManagerService.java",
                "function": "handleAuthenticatorResponse"
            },
            "signature_type": "Function"
        },
        {
            "digest": {
                "length": 1140.0,
                "function_hash": "13955884187775680452074247685830298299"
            },
            "id": "ASB-A-179338675-8e029192",
            "source": "https://android.googlesource.com/platform/frameworks/base/+/26de0c231ffb9fd8d22e80ca120c766c26276779",
            "deprecated": false,
            "signature_version": "v1",
            "target": {
                "file": "services/core/java/com/android/server/accounts/AccountManagerService.java",
                "function": "createNoCredentialsPermissionNotification"
            },
            "signature_type": "Function"
        },
        {
            "digest": {
                "length": 675.0,
                "function_hash": "63344495078565705575570774399620073325"
            },
            "id": "ASB-A-179338675-e10aaa92",
            "source": "https://android.googlesource.com/platform/frameworks/base/+/26de0c231ffb9fd8d22e80ca120c766c26276779",
            "deprecated": false,
            "signature_version": "v1",
            "target": {
                "file": "services/core/java/com/android/server/accounts/AccountManagerService.java",
                "function": "getCredentialPermissionNotificationId"
            },
            "signature_type": "Function"
        }
    ],
    "fixes": [
        "https://android.googlesource.com/platform/frameworks/base/+/26de0c231ffb9fd8d22e80ca120c766c26276779",
        "https://android.googlesource.com/platform/frameworks/base/+/3520f7482aef0bdb78cc9c3cc2a2e1f6915a6462"
    ],
    "spl": "2021-12-01",
    "severity": "High",
    "types": [
        "ID"
    ]
}

Android / platform/frameworks/base

Package

Name: platform/frameworks/base

Affected ranges

Type: ECOSYSTEM
Events: Introduced

11:0

Fixed

11:2021-12-01

Affected versions

Other

Ecosystem specific

{
    "vanir_signatures": [
        {
            "digest": {
                "length": 288.0,
                "function_hash": "307051170335423403625995541990461685265"
            },
            "id": "ASB-A-179338675-263d7e71",
            "source": "https://android.googlesource.com/platform/frameworks/base/+/26de0c231ffb9fd8d22e80ca120c766c26276779",
            "deprecated": false,
            "signature_version": "v1",
            "target": {
                "file": "services/core/java/com/android/server/accounts/AccountManagerService.java",
                "function": "cancelAccountAccessRequestNotificationIfNeeded"
            },
            "signature_type": "Function"
        },
        {
            "digest": {
                "length": 675.0,
                "function_hash": "63344495078565705575570774399620073325"
            },
            "id": "ASB-A-179338675-2976d879",
            "source": "https://android.googlesource.com/platform/frameworks/base/+/26de0c231ffb9fd8d22e80ca120c766c26276779",
            "deprecated": false,
            "signature_version": "v1",
            "target": {
                "file": "services/core/java/com/android/server/accounts/AccountManagerService.java",
                "function": "getCredentialPermissionNotificationId"
            },
            "signature_type": "Function"
        },
        {
            "digest": {
                "length": 341.0,
                "function_hash": "162839267298597953049593036352953645864"
            },
            "id": "ASB-A-179338675-41700d39",
            "source": "https://android.googlesource.com/platform/frameworks/base/+/26de0c231ffb9fd8d22e80ca120c766c26276779",
            "deprecated": false,
            "signature_version": "v1",
            "target": {
                "file": "services/core/java/com/android/server/accounts/AccountManagerService.java",
                "function": "handleAuthenticatorResponse"
            },
            "signature_type": "Function"
        },
        {
            "digest": {
                "length": 986.0,
                "function_hash": "102001159819944637002872403145654094347"
            },
            "id": "ASB-A-179338675-4396c2f3",
            "source": "https://android.googlesource.com/platform/frameworks/base/+/26de0c231ffb9fd8d22e80ca120c766c26276779",
            "deprecated": false,
            "signature_version": "v1",
            "target": {
                "file": "services/core/java/com/android/server/accounts/AccountManagerService.java",
                "function": "newRequestAccountAccessIntent"
            },
            "signature_type": "Function"
        },
        {
            "digest": {
                "length": 1140.0,
                "function_hash": "13955884187775680452074247685830298299"
            },
            "id": "ASB-A-179338675-b2adfced",
            "source": "https://android.googlesource.com/platform/frameworks/base/+/26de0c231ffb9fd8d22e80ca120c766c26276779",
            "deprecated": false,
            "signature_version": "v1",
            "target": {
                "file": "services/core/java/com/android/server/accounts/AccountManagerService.java",
                "function": "createNoCredentialsPermissionNotification"
            },
            "signature_type": "Function"
        },
        {
            "digest": {
                "threshold": 0.9,
                "line_hashes": [
                    "163192342974377152570748212987128057417",
                    "22536596362231034706818993951376135422",
                    "118745096072953635828624464550044468726",
                    "34877321948437329702879665358890462741",
                    "32909206349284035137301982068806649775",
                    "66018423483605967277575008754118635664",
                    "75617253890838800580423688036835732869",
                    "318496622784484702645689058493886502516",
                    "286045575951711842270786390741141769759",
                    "269835483600688645271061730841538456826",
                    "65090194467229542279066703150103838236",
                    "205939095187475124984644159056928354449",
                    "84516931391985999388513136331065465072",
                    "287760905822221236413637403731432114516",
                    "281401285350230527246651408033674429643",
                    "75333331059831584579307336761417834222",
                    "89605061369020268649647604619435640331",
                    "16769430245374382523840380980960032915",
                    "243992805329677801353898343829907170815",
                    "200000965947859984963851073412833473112",
                    "213738648577702954548876568284062043058"
                ]
            },
            "id": "ASB-A-179338675-bf773afe",
            "source": "https://android.googlesource.com/platform/frameworks/base/+/26de0c231ffb9fd8d22e80ca120c766c26276779",
            "deprecated": false,
            "signature_version": "v1",
            "target": {
                "file": "services/core/java/com/android/server/accounts/AccountManagerService.java"
            },
            "signature_type": "Line"
        }
    ],
    "fixes": [
        "https://android.googlesource.com/platform/frameworks/base/+/26de0c231ffb9fd8d22e80ca120c766c26276779"
    ],
    "spl": "2021-12-01",
    "severity": "High",
    "types": [
        "ID"
    ]
}